[libvirt] This patch mounts tmpfs on /run iff /run directory exists in libvirt-lxc containers.
Daniel J Walsh
dwalsh at redhat.com
Fri May 4 14:59:21 UTC 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
We do not want to share /run with containers in order to prevent information
leakage and applications within the containers attempting to communicate with
applications outside of the container.
It uses the same mount options used for /dev.
We also want to bind mount over /var/run directory since this will either be a
symbolic link to /run but on some installations /run is bind mounted over
/var/run. If we just mount /run we are not guaranteed the /var/run will have
the same content.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAk+j7skACgkQrlYvE4MpobNSKQCfY2yGP/S+piUJ9VNtSjrliFTp
ucAAoLJOazpcZvBRFnQUa7uqhh+tRagb
=TjAb
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: libvirt-lxc-run.patch
Type: text/x-patch
Size: 1383 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/libvir-list/attachments/20120504/a293409f/attachment-0001.bin>
More information about the libvir-list
mailing list